Encapsulating Security Payload (ESP)

The Encapsulating Security Payload (ESP) provides confidentiality (encryption), integrity, authentication, and partial sequence integrity (replay protection) for IP packets. As its name suggests, ESP protects only the encapsulated data. Headers of the IP packet used to transmit this information are not protected by the ESP. In Solaris 8, ESP is implemented by the ipsecesp driver module of the kernel and is accessed as /dev/ipsecesp. The document that defines ESP is RFC 2406,“IP Encapsulating Security Payload (ESP).” The current implementation of ESP in Solaris uses DES and Triple DES encryption algorithms. These algorithms are described in Chapter 2. As with ipsecah, ipsecesp may also be accessed using

Get Solaris 8 Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.